kempo-server 1.3.0 → 1.4.3

package/docs/routing.html

@@ -0,0 +1,77 @@
+<html lang="en" theme="auto">
+<head>
+  <meta charset='utf-8'>
+  <meta http-equiv='X-UA-Compatible' content='IE=edge'>
+  <title>Routes & Routing - Kempo Server</title>
+  <meta name='viewport' content='width=device-width, initial-scale=1'>
+  <link rel="icon" type="image/png" sizes="48x48" href="media/icon48.png">
+  <link rel="manifest" href="manifest.json">
+  <link rel="stylesheet" href="essential.css" />
+</head>
+<body>
+  <main>
+    <a href="./" class="btn">Home</a>
+    <h1>Routes & Routing</h1>
+    <p>Learn how Kempo Server's file-based routing system works.</p>
+
+    <h2>How Routes Work</h2>
+    <p>A route is a request to a directory that will be handled by a file. To define routes, create the directory structure to the route and create a file with the name of the method that this file will handle. For example <code>GET.js</code> will handle the <code>GET</code> requests, <code>POST.js</code> will handle the <code>POST</code> requests and so on. Use <code>index.js</code> to handle all request types.</p>
+    
+    <p>The Javascript file must have a <b>default</b> export that is the function that will handle the request. It will be passed a <code>request</code> object and a <code>response</code> object.</p>
+    
+    <p>For example this directory structure:</p>
+    <pre><code class="hljs markdown">my/<br />├─ route/<br />│  ├─ GET.js<br />│  ├─ POST.js<br />├─ other/<br />│  ├─ route/<br />│  │  ├─ GET.js<br /></code></pre>
+    <p>Would be used to handle <code>GET my/route/</code>, <code>POST my/route/</code> and <code>GET my/other/route/</code></p>
+
+    <h2 id="htmlRoutes">HTML Routes</h2>
+    <p>Just like JS files, HTML files can be used to define a route. Use <code>GET.html</code>, <code>POST.html</code>, etc... to define files that will be served when that route is requested.</p>
+    <pre><code class="hljs markdown">my/<br />├─ route/<br />│  ├─ GET.js<br />│  ├─ POST.js<br />├─ other/<br />│  ├─ route/<br />│  │  ├─ GET.js<br />│  ├─ POST.html<br />│  ├─ GET.html<br /></code></pre>
+    
+    <h3><code>index</code> fallbacks</h3>
+    <p><code>index.js</code> or <code>index.html</code> will be used as a fallback for all routes if a <i>method</i> file is not defined. In the above examples we do not have any routes defined for <code>DELETE</code>, <code>PUT</code> <code>PATCH</code>, etc... so lets use an <code>index.js</code> and <code>index.html</code> to be a "catch-all" for all the methods we have not created handlers for.</p>
+    <pre><code class="hljs markdown">my/<br />├─ route/<br />│  ├─ GET.js<br />│  ├─ POST.js<br />│  ├─ index.js<br />├─ other/<br />│  ├─ route/<br />│  │  ├─ GET.js<br />│  │  ├─ index.js<br />│  ├─ POST.html<br />│  ├─ GET.html<br />│  ├─ index.html<br />├─ index.html<br /></code></pre>
+
+    <h2>Dynamic Routes</h2>
+    <p>A dynamic route is a route with a "param" in its path. To define the dynamic parts of the route just wrap the directory name in square brackets. For example if you wanted to get a users profile, or perform CRUD operations on a user you might create the following directory structure.</p>
+    <pre><code class="hljs markdown">api/<br />├─ user/<br />│  ├─ [id]/<br />│  │  ├─ [info]/<br />│  │  │  ├─ GET.js<br />│  │  │  ├─ DELETE.js<br />│  │  │  ├─ PUT.js<br />│  │  │  ├─ POST.js<br />│  │  ├─ GET.js<br /></code></pre>
+    <p>When a request is made to <code>/api/user/123/info</code>, the route file <code>api/user/[id]/[info]/GET.js</code> would be executed and receive a request object with <code>request.params</code> containing <code>{ id: "123", info: "info" }</code>.</p>
+
+    <h2>Route Examples</h2>
+    
+    <h3>Simple API Route</h3>
+    <pre><code class="hljs javascript"><span class="hljs-comment">// api/hello/GET.js</span><br /><span class="hljs-keyword">export</span> <span class="hljs-keyword">default</span> <span class="hljs-keyword">async</span> <span class="hljs-function"><span class="hljs-keyword">function</span>(<span class="hljs-params">request, response</span>) </span>{<br />  <span class="hljs-keyword">const</span> { name } = request.query;<br />  <span class="hljs-keyword">const</span> message = name ? <span class="hljs-string">`Hello ${name}!`</span> : <span class="hljs-string">'Hello World!'</span>;<br />  <br />  response.json({ message });<br />}</code></pre>
+
+    <h3>Dynamic User Profile Route</h3>
+    <pre><code class="hljs javascript"><span class="hljs-comment">// api/users/[id]/GET.js</span><br /><span class="hljs-keyword">export</span> <span class="hljs-keyword">default</span> <span class="hljs-keyword">async</span> <span class="hljs-function"><span class="hljs-keyword">function</span>(<span class="hljs-params">request, response</span>) </span>{<br />  <span class="hljs-keyword">const</span> { id } = request.params;<br />  <span class="hljs-keyword">const</span> { includeProfile } = request.query;<br />  <br />  <span class="hljs-comment">// Simulate database lookup</span><br />  <span class="hljs-keyword">const</span> user = {<br />    id: id,<br />    name: <span class="hljs-string">`User ${id}`</span>,<br />    email: <span class="hljs-string">`user${id}@example.com`</span><br />  };<br />  <br />  <span class="hljs-keyword">if</span> (includeProfile === <span class="hljs-string">'true'</span>) {<br />    user.profile = {<br />      bio: <span class="hljs-string">`Bio for user ${id}`</span>,<br />      joinDate: <span class="hljs-string">'2024-01-01'</span><br />    };<br />  }<br />  <br />  response.json(user);<br />}</code></pre>
+
+    <h3>Nested Dynamic Routes</h3>
+    <pre><code class="hljs javascript"><span class="hljs-comment">// api/users/[id]/posts/[postId]/GET.js</span><br /><span class="hljs-keyword">export</span> <span class="hljs-keyword">default</span> <span class="hljs-keyword">async</span> <span class="hljs-function"><span class="hljs-keyword">function</span>(<span class="hljs-params">request, response</span>) </span>{<br />  <span class="hljs-keyword">const</span> { id, postId } = request.params;<br />  <br />  <span class="hljs-keyword">const</span> post = {<br />    id: postId,<br />    userId: id,<br />    title: <span class="hljs-string">`Post ${postId} by User ${id}`</span>,<br />    content: <span class="hljs-string">'This is the post content...'</span>,<br />    createdAt: <span class="hljs-string">'2024-01-01T00:00:00.000Z'</span><br />  };<br />  <br />  response.json(post);<br />}</code></pre>
+
+    <h3>HTML Route Example</h3>
+    <pre><code class="hljs html"><span class="hljs-comment">&lt;!-- pages/about/GET.html --&gt;</span><br /><span class="hljs-meta">&lt;!DOCTYPE html&gt;</span><br /><span class="hljs-tag">&lt;<span class="hljs-name">html</span>&gt;</span><br /><span class="hljs-tag">&lt;<span class="hljs-name">head</span>&gt;</span><br />  <span class="hljs-tag">&lt;<span class="hljs-name">title</span>&gt;</span>About Us<span class="hljs-tag">&lt;/<span class="hljs-name">title</span>&gt;</span><br /><span class="hljs-tag">&lt;/<span class="hljs-name">head</span>&gt;</span><br /><span class="hljs-tag">&lt;<span class="hljs-name">body</span>&gt;</span><br />  <span class="hljs-tag">&lt;<span class="hljs-name">h1</span>&gt;</span>About Our Company<span class="hljs-tag">&lt;/<span class="hljs-name">h1</span>&gt;</span><br />  <span class="hljs-tag">&lt;<span class="hljs-name">p</span>&gt;</span>We are a company that does amazing things.<span class="hljs-tag">&lt;/<span class="hljs-name">p</span>&gt;</span><br /><span class="hljs-tag">&lt;/<span class="hljs-name">body</span>&gt;</span><br /><span class="hljs-tag">&lt;/<span class="hljs-name">html</span>&gt;</span></code></pre>
+
+    <h2>Route File Structure Best Practices</h2>
+    
+    <h3>Organize by Feature</h3>
+    <pre><code class="hljs markdown">api/<br />├─ auth/<br />│  ├─ login/<br />│  │  ├─ POST.js<br />│  ├─ logout/<br />│  │  ├─ POST.js<br />│  ├─ register/<br />│  │  ├─ POST.js<br />├─ users/<br />│  ├─ [id]/<br />│  │  ├─ GET.js<br />│  │  ├─ PUT.js<br />│  │  ├─ DELETE.js<br />│  ├─ GET.js<br />│  ├─ POST.js<br />├─ posts/<br />│  ├─ [id]/<br />│  │  ├─ GET.js<br />│  │  ├─ PUT.js<br />│  │  ├─ DELETE.js<br />│  ├─ GET.js<br />│  ├─ POST.js<br /></code></pre>
+
+    <h3>Use Index Files for Fallbacks</h3>
+    <p>Use <code>index.js</code> to handle methods not explicitly defined:</p>
+    <pre><code class="hljs javascript"><span class="hljs-comment">// api/users/index.js</span><br /><span class="hljs-keyword">export</span> <span class="hljs-keyword">default</span> <span class="hljs-keyword">async</span> <span class="hljs-function"><span class="hljs-keyword">function</span>(<span class="hljs-params">request, response</span>) </span>{<br />  <span class="hljs-comment">// Handle any method not explicitly defined</span><br />  response.status(<span class="hljs-number">405</span>).json({<br />    error: <span class="hljs-string">'Method not allowed'</span>,<br />    allowed: [<span class="hljs-string">'GET'</span>, <span class="hljs-string">'POST'</span>]<br />  });<br />}</code></pre>
+
+    <h2>Static File Serving</h2>
+    <p>Any file that doesn't match a route pattern will be served as a static file. This includes:</p>
+    <ul>
+      <li>HTML files (except route files)</li>
+      <li>CSS files</li>
+      <li>JavaScript files (except route files)</li>
+      <li>Images</li>
+      <li>Any other static assets</li>
+    </ul>
+
+    <p>Example static file structure:</p>
+    <pre><code class="hljs markdown">public/<br />├─ index.html         # Served at /<br />├─ styles.css         # Served at /styles.css<br />├─ script.js          # Served at /script.js<br />├─ images/<br />│  ├─ logo.png        # Served at /images/logo.png<br />├─ api/               # Routes directory<br />│  ├─ hello/GET.js    # Route handler<br /></code></pre>
+  </main>
+  <div style="height:25vh"></div>
+</body>
+</html>

package/package.json

@@ -1,18 +1,23 @@
 {
   "name": "kempo-server",
   "type": "module",
-  "version": "1.3.0",
+  "version": "1.4.3",
   "description": "A lightweight, zero-dependency, file based routing server.",
   "main": "index.js",
   "bin": {
     "kempo-server": "./index.js"
   },
   "scripts": {
-    "start": "node index.js -r ./docs"
+  "start": "node index.js -r ./docs",
+  "tests": "npx kempo-test",
+  "tests:gui": "npx kempo-test --gui",
+  "tests:browser": "npx kempo-test -b",
+  "tests:node": "npx kempo-test -n"
   },
   "author": "",
   "license": "ISC",
   "devDependencies": {
-    "essentialcss": "^2.0.1"
+    "essentialcss": "^2.0.1",
+    "kempo-testing-framework": "^1.2.3"
   }
 }

package/tests/builtinMiddleware-cors.node-test.js

@@ -0,0 +1,17 @@
+import {corsMiddleware} from '../builtinMiddleware.js';
+import {createMockReq, createMockRes, expect} from './test-utils.js';
+
+export default {
+  'cors origin array and non-OPTIONS continues to next': async ({pass, fail}) => {
+    try {
+      const res = createMockRes();
+      const mw = corsMiddleware({origin: ['http://a','http://b'], methods: ['GET'], headers: ['X']});
+      const req = createMockReq({method: 'GET', headers: {origin: 'http://b'}});
+      let called = false;
+      await mw(req, res, async () => { called = true; });
+      expect(called, 'next not called');
+      expect(res.getHeader('Access-Control-Allow-Origin') === 'http://b', 'allowed origin');
+      pass('cors array');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/builtinMiddleware.node-test.js

@@ -0,0 +1,74 @@
+import http from 'http';
+import {createMockReq, createMockRes, expect, bigString, gzipSize, setEnv} from './test-utils.js';
+import {corsMiddleware, compressionMiddleware, rateLimitMiddleware, securityMiddleware, loggingMiddleware} from '../builtinMiddleware.js';
+
+export default {
+  'cors middleware sets headers and handles OPTIONS': async ({pass, fail}) => {
+    try {
+      const res = createMockRes();
+      const mw = corsMiddleware({origin: '*', methods: ['GET'], headers: ['X']});
+      const req = createMockReq({method: 'OPTIONS', headers: {origin: 'http://x'}});
+      await mw(req, res, async () => {});
+      expect(res.isEnded(), 'preflight should end');
+      expect(res.getHeader('Access-Control-Allow-Origin') === 'http://x' || res.getHeader('Access-Control-Allow-Origin') === '*', 'origin header');
+      pass('cors');
+    } catch(e){ fail(e.message); }
+  },
+  'compression middleware gzips when threshold met and client accepts': async ({pass, fail}) => {
+    try {
+      const res = createMockRes();
+      const mw = compressionMiddleware({threshold: 1024});
+      const req = createMockReq({headers: {'accept-encoding': 'gzip'}});
+      // simulate next writing large body
+  await mw(req, res, async () => {
+        res.write(bigString(5000));
+        res.end();
+      });
+  await new Promise(r => setTimeout(r, 10));
+      const body = res.getBody();
+      const original = Buffer.from(bigString(5000));
+      const gzLen = await gzipSize(original);
+      // If gzipped is smaller, we expect gzip header. Otherwise, implementation may send uncompressed.
+      if(gzLen < original.length){
+        expect(res.getHeader('Content-Encoding') === 'gzip', 'should gzip when beneficial');
+      }
+      expect(body.length > 0, 'has body');
+      pass('compression');
+    } catch(e){ fail(e.message); }
+  },
+  'rate limit returns 429 after maxRequests': async ({pass, fail}) => {
+    try {
+      const cfg = {maxRequests: 2, windowMs: 1000, message: 'Too many'};
+      const mw = rateLimitMiddleware(cfg);
+      const req = createMockReq();
+      const res1 = createMockRes();
+      await mw(req, res1, async () => {});
+      const res2 = createMockRes();
+      await mw(req, res2, async () => {});
+      const res3 = createMockRes();
+      await mw(req, res3, async () => {});
+      expect(res3.statusCode === 429, 'should rate limit');
+      pass('rateLimit');
+    } catch(e){ fail(e.message); }
+  },
+  'security middleware sets headers': async ({pass, fail}) => {
+    try {
+      const res = createMockRes();
+      const mw = securityMiddleware({headers: {'X-Test': '1'}});
+      await mw(createMockReq(), res, async () => {});
+      expect(res.getHeader('X-Test') === '1', 'header set');
+      pass('security');
+    } catch(e){ fail(e.message); }
+  },
+  'logging middleware logs after response end': async ({pass, fail}) => {
+    try {
+      const logs = [];
+      const logger = (m) => logs.push(String(m));
+      const mw = loggingMiddleware({includeUserAgent: true, includeResponseTime: true}, logger);
+      const res = createMockRes();
+      await mw(createMockReq({headers: {'user-agent': 'UA'}}), res, async () => { res.end('x'); });
+      expect(logs.length === 1 && logs[0].includes('GET /') && logs[0].includes('UA'), 'logged');
+      pass('logging');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/defaultConfig.node-test.js

@@ -0,0 +1,13 @@
+import defaultConfig from '../defaultConfig.js';
+
+export default {
+  'defaultConfig contains required fields and types': async ({pass, fail}) => {
+    try {
+      if(typeof defaultConfig !== 'object') throw new Error('not object');
+      if(!defaultConfig.allowedMimes || !defaultConfig.disallowedRegex) throw new Error('missing keys');
+      if(!defaultConfig.routeFiles.includes('GET.js')) throw new Error('routeFiles missing GET.js');
+      if(!defaultConfig.middleware || typeof defaultConfig.middleware !== 'object') throw new Error('middleware missing');
+      pass('shape ok');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/example-middleware.node-test.js

@@ -0,0 +1,31 @@
+import path from 'path';
+import url from 'url';
+import {createMockReq, createMockRes, expect, setEnv} from './test-utils.js';
+
+// import the middleware module by file path to avoid executing index.js
+const examplePath = path.join(process.cwd(), 'example-middleware.js');
+const {default: authMiddleware} = await import(url.pathToFileURL(examplePath));
+
+export default {
+  'blocks when API key missing and allows when present': async ({pass, fail}) => {
+    try {
+      await setEnv({API_KEY: 'abc'}, async () => {
+        const res1 = createMockRes();
+        await authMiddleware(createMockReq({url:'/private'}), res1, async ()=>{});
+        expect(res1.statusCode === 401, 'should 401 without key');
+
+        const res2 = createMockRes();
+        const req2 = createMockReq({headers: {'x-api-key': 'abc'}, url:'/private'});
+        let called = false;
+        await authMiddleware(req2, res2, async ()=>{ called = true; });
+        expect(called, 'should call next');
+        expect(req2.user && req2.user.authenticated, 'user attached');
+
+        const res3 = createMockRes();
+        await authMiddleware(createMockReq({url:'/public/file'}), res3, async ()=>{});
+        expect(res3.isEnded() === false, 'public should not end');
+      });
+      pass('auth middleware');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/findFile.node-test.js

@@ -0,0 +1,46 @@
+import findFile from '../findFile.js';
+import path from 'path';
+
+const toAbs = (root, p) => path.join(root, p);
+
+export default {
+  'exact match returns file': async ({pass, fail, log}) => {
+    try {
+      const root = path.join(process.cwd(), 'tmp-root');
+      const files = [toAbs(root, 'a/b/GET.js')];
+      const [file, params] = await findFile(files, root, '/a/b/GET.js', 'GET', log);
+      if(file !== files[0]) throw new Error('not exact');
+      if(Object.keys(params).length !== 0) throw new Error('params present');
+      pass('exact');
+    } catch(e){ fail(e.message); }
+  },
+  'directory index prioritization and method specific': async ({pass, fail, log}) => {
+    try {
+  const root = path.join(process.cwd(), 'tmp-root');
+  const files = ['a/index.html', 'a/GET.js', 'a/index.js'].map(p => toAbs(root, p));
+  const [file] = await findFile(files, root, '/a', 'GET', log);
+  if(!file || path.basename(file) !== 'GET.js') throw new Error('priority not respected');
+      pass('dir index');
+    } catch(e){ fail(e.message); }
+  },
+  'dynamic match with params and best priority': async ({pass, fail, log}) => {
+    try {
+  const root = path.join(process.cwd(), 'tmp-root');
+      const files = ['user/[id]/GET.js', 'user/[id]/index.html', 'user/[id]/index.js'].map(p => toAbs(root, p));
+  const [file, params] = await findFile(files, root, '/user/42', 'GET', log);
+  if(!file || path.basename(file) !== 'GET.js') throw new Error('did not pick GET.js');
+      if(params.id !== '42') throw new Error('param missing');
+      pass('dynamic');
+    } catch(e){ fail(e.message); }
+  },
+  'no match returns false and empty params': async ({pass, fail, log}) => {
+    try {
+  const root = path.join(process.cwd(), 'tmp-root');
+      const files = ['x/y/index.html'].map(p => toAbs(root, p));
+      const [file, params] = await findFile(files, root, '/nope', 'GET', log);
+      if(file !== false) throw new Error('should be false');
+      if(Object.keys(params).length !== 0) throw new Error('params not empty');
+      pass('no match');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/getFiles.node-test.js

@@ -0,0 +1,25 @@
+import getFiles from '../getFiles.js';
+import defaultConfig from '../defaultConfig.js';
+import path from 'path';
+import {withTempDir, write, expect, log} from './test-utils.js';
+
+export default {
+  'scans directories recursively and filters by mime and disallowed': async ({pass, fail}) => {
+    try {
+      await withTempDir(async (dir) => {
+        const cfg = JSON.parse(JSON.stringify(defaultConfig));
+        await write(dir, 'index.html', '<!doctype html>');
+        await write(dir, '.env', 'SECRET=1');
+        await write(dir, 'notes.xyz', 'unknown');
+        await write(dir, 'sub/app.js', 'console.log(1)');
+  const files = await getFiles(dir, cfg, log);
+  const rel = files.map(f => path.relative(dir, f).replace(/\\/g, '/'));
+        expect(rel.includes('index.html'), 'includes html');
+        expect(rel.includes('sub/app.js'), 'includes js');
+  expect(!rel.includes('.env'), 'excludes disallowed');
+        expect(!rel.includes('notes.xyz'), 'excludes unknown ext');
+      });
+      pass('scan and filter');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/getFlags.node-test.js

@@ -0,0 +1,30 @@
+import getFlags from '../getFlags.js';
+
+export default {
+  'parses long flags with values and booleans': async ({pass, fail}) => {
+    const args = ['--port', '8080', '--scan'];
+    const flags = getFlags(args, {port: 3000, scan: false});
+    try {
+      if(flags.port !== '8080') throw new Error('port not parsed');
+      if(flags.scan !== true) throw new Error('scan boolean not parsed');
+      pass('parsed long flags');
+    } catch(e){ fail(e.message); }
+  },
+  'parses short flags using map and preserves defaults': async ({pass, fail}) => {
+    const args = ['-p', '9090', '-s'];
+    const flags = getFlags(args, {port: 3000, scan: false}, {p: 'port', s: 'scan'});
+    try {
+      if(flags.port !== '9090') throw new Error('short mapped value failed');
+      if(flags.scan !== true) throw new Error('short mapped boolean failed');
+      pass('short flags parsed');
+    } catch(e){ fail(e.message); }
+  },
+  'treats next arg starting with dash as boolean flag': async ({pass, fail}) => {
+    const args = ['-l', '-5', 'file'];
+    const flags = getFlags(args, {l: 2});
+    try {
+      if(flags.l !== true) throw new Error('should be boolean true');
+      pass('dash after flag -> boolean');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/index.node-test.js

@@ -0,0 +1,23 @@
+import {startNode, expect, randomPort, httpGet, withTempDir, write} from './test-utils.js';
+import path from 'path';
+
+export default {
+  'index.js CLI starts server and serves root': async ({pass, fail}) => {
+    try {
+      await withTempDir(async (dir) => {
+  await write(dir, 'index.html', 'home');
+  const port = randomPort();
+  const args = [path.join(process.cwd(), 'index.js'), '-r', '.', '-p', String(port), '-l', '0'];
+  const child = await startNode(args, {cwd: dir});
+  // wait briefly for server to start
+  await new Promise(r => setTimeout(r, 400));
+        const {res, body} = await httpGet(`http://localhost:${port}/index.html`);
+        expect(res.statusCode === 200, 'server running');
+        expect(body.toString() === 'home', 'served');
+  child.kill();
+  await new Promise(r => setTimeout(r, 50));
+      });
+      pass('cli');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/middlewareRunner.node-test.js

@@ -0,0 +1,18 @@
+import MiddlewareRunner from '../middlewareRunner.js';
+import {createMockReq, createMockRes, expect} from './test-utils.js';
+
+export default {
+  'runs middleware in order and calls finalHandler': async ({pass, fail}) => {
+    try {
+      const mr = new MiddlewareRunner();
+      const calls = [];
+      mr.use(async (_req, _res, next) => { calls.push('a'); await next(); calls.push('a:after'); });
+      mr.use(async (_req, _res, next) => { calls.push('b'); await next(); calls.push('b:after'); });
+      const req = createMockReq();
+      const res = createMockRes();
+      await mr.run(req, res, async () => { calls.push('final'); });
+      expect(calls.join(',') === 'a,b,final,b:after,a:after', 'order incorrect');
+      pass('middleware order');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/requestWrapper.node-test.js

@@ -0,0 +1,51 @@
+import {createMockReq, expect} from './test-utils.js';
+import createRequestWrapper from '../requestWrapper.js';
+
+export default {
+  'parses query and path and provides params': async ({pass, fail}) => {
+    try {
+      const req = createMockReq({url: '/user/123?x=1&y=2', headers: {host: 'localhost'}});
+      const wrapped = createRequestWrapper(req, {id: '123'});
+      expect(wrapped.path === '/user/123', 'path');
+      expect(wrapped.query.x === '1' && wrapped.query.y === '2', 'query');
+      expect(wrapped.params.id === '123', 'params');
+      pass('parsed url');
+    } catch(e){ fail(e.message); }
+  },
+  'body/json/text/buffer helpers work': async ({pass, fail}) => {
+    try {
+      const payload = {a: 1};
+      // Each body reader must have its own stream instance
+      const reqText = createMockReq({method: 'POST', url: '/', headers: {host: 'x', 'content-type': 'application/json'}, body: JSON.stringify(payload)});
+      const text = await createRequestWrapper(reqText).text();
+      expect(text === JSON.stringify(payload), 'text');
+
+      const reqJson = createMockReq({method: 'POST', url: '/', headers: {host: 'x', 'content-type': 'application/json'}, body: JSON.stringify(payload)});
+      const obj = await createRequestWrapper(reqJson).json();
+      expect(obj.a === 1, 'json');
+
+      const reqBuf = createMockReq({url: '/', headers: {host: 'x'}, body: 'abc'});
+      const buf = await createRequestWrapper(reqBuf).buffer();
+      expect(Buffer.isBuffer(buf) && buf.toString() === 'abc', 'buffer');
+      pass('helpers');
+    } catch(e){ fail(e.message); }
+  },
+  'invalid json throws': async ({pass, fail}) => {
+    const req = createMockReq({url: '/', headers: {host: 'x'}, body: 'not json'});
+    try {
+      await createRequestWrapper(req).json();
+      fail('should throw');
+    } catch(e){
+      pass('threw');
+    }
+  },
+  'get and is helpers': async ({pass, fail}) => {
+    try {
+      const req = createMockReq({url: '/', headers: {'content-type': 'text/plain', host: 'x'}});
+      const w = createRequestWrapper(req);
+      expect(w.get('content-type') === 'text/plain', 'get');
+      expect(w.is('text/plain') === true, 'is');
+      pass('header helpers');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/responseWrapper.node-test.js

@@ -0,0 +1,74 @@
+import {createMockRes, expect, parseCookies} from './test-utils.js';
+import createResponseWrapper from '../responseWrapper.js';
+
+export default {
+  'status and set/get headers and type': async ({pass, fail}) => {
+    try {
+      const res = createMockRes();
+      const w = createResponseWrapper(res);
+      w.status(201).set('X-Test', '1').type('json');
+      expect(res.statusCode === 201, 'status');
+      expect(res.getHeader('X-Test') === '1', 'set/get');
+      expect(res.getHeader('Content-Type') === 'application/json', 'type');
+      pass('status+headers+type');
+    } catch(e){ fail(e.message); }
+  },
+  'json sends and prevents further changes': async ({pass, fail}) => {
+    try {
+      const res = createMockRes();
+      const w = createResponseWrapper(res);
+      w.json({a: 1});
+      expect(res.isEnded(), 'ended');
+      try { w.set('X', 'y'); fail('should not set after send'); } catch(_){ /* ok */ }
+      pass('json');
+    } catch(e){ fail(e.message); }
+  },
+  'send handles string, object, buffer and null': async ({pass, fail}) => {
+    try {
+  const res1 = createMockRes();
+  createResponseWrapper(res1).send('hello');
+  // Content-Type defaults to text/html for string when not set
+  expect(res1.getHeader('Content-Type') === 'text/html', 'string content-type');
+      expect(res1.getBody().toString() === 'hello', 'string body');
+
+      const res2 = createMockRes();
+      createResponseWrapper(res2).send({a:1});
+      expect(res2.getHeader('Content-Type') === 'application/json', 'object content-type');
+
+  const res3 = createMockRes();
+  const buf = Buffer.from('abc');
+  createResponseWrapper(res3).send(buf);
+  const body3 = res3.getBody().toString();
+  expect(body3.includes('"data"'), 'buffer equal');
+
+  const res4 = createMockRes();
+  createResponseWrapper(res4).send(null);
+  expect(res4.isEnded(), 'null ended');
+      pass('send variants');
+    } catch(e){ fail(e.message); }
+  },
+  'html and text helpers': async ({pass, fail}) => {
+    try {
+      const r1 = createMockRes();
+      createResponseWrapper(r1).html('<h1>Ok</h1>');
+      expect(r1.getHeader('Content-Type') === 'text/html', 'html type');
+
+      const r2 = createMockRes();
+      createResponseWrapper(r2).text('plain');
+      expect(r2.getHeader('Content-Type') === 'text/plain', 'text type');
+      pass('helpers');
+    } catch(e){ fail(e.message); }
+  },
+  'redirect and cookies': async ({pass, fail}) => {
+    try {
+      const r = createMockRes();
+      const w = createResponseWrapper(r);
+      w.cookie('a', 'b', {httpOnly: true, path: '/'});
+      const cookies = parseCookies(r.getHeader('Set-Cookie'));
+      expect(cookies.length === 1 && cookies[0].includes('a=b'), 'cookie added');
+      w.redirect('/next', 301);
+      expect(r.statusCode === 301 && r.getHeader('Location') === '/next', 'redirect');
+      pass('redirect+cookie');
+    } catch(e){ fail(e.message); }
+  }
+};

package/tests/router-middleware.node-test.js

@@ -0,0 +1,46 @@
+import http from 'http';
+import {withTempDir, write, expect, randomPort} from './test-utils.js';
+import router from '../router.js';
+
+export default {
+  'built-in middleware can be configured on router': async ({pass, fail}) => {
+    try {
+      await withTempDir(async (dir) => {
+        await write(dir, '.config.json', JSON.stringify({
+          middleware: {
+            cors: {enabled: true, origin: '*', methods: ['GET'], headers: ['X']},
+            compression: {enabled: true, threshold: 1},
+            rateLimit: {enabled: true, maxRequests: 1, windowMs: 1000, message: 'Too many'},
+            security: {enabled: true, headers: {'X-Test':'1'}},
+            logging: {enabled: true, includeUserAgent: false, includeResponseTime: true}
+          }
+        }));
+  await write(dir, 'index.html', 'hello world');
+  const prev = process.cwd();
+  process.chdir(dir);
+  const flags = {root: '.', logging: 0, scan: false};
+  const handler = await router(flags, () => {});
+        const server = http.createServer(handler);
+        const port = randomPort();
+        await new Promise(r => server.listen(port, r));
+        await new Promise(r => setTimeout(r, 50));
+        try {
+          const {get} = await import('http');
+          const one = await new Promise((res)=>{
+            get(`http://localhost:${port}/index.html`, {headers: {'accept-encoding': 'gzip'}}, r =>{
+              const chunks = []; r.on('data', c => chunks.push(c)); r.on('end', ()=> res({r, body: Buffer.concat(chunks)}));
+            });
+          });
+          expect(one.r.statusCode === 200, 'first ok');
+          const two = await new Promise((res)=>{
+            get(`http://localhost:${port}/index.html`, r =>{
+              const chunks = []; r.on('data', c => chunks.push(c)); r.on('end', ()=> res({r, body: Buffer.concat(chunks)}));
+            });
+          });
+          expect(two.r.statusCode === 429, 'rate limited');
+        } finally { server.close(); process.chdir(prev); }
+      });
+      pass('router middleware');
+    } catch(e){ fail(e.message); }
+  }
+};